Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
dootzky vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2009-4903
Cross-site scripting (XSS) vulnerability in index.php in oBlog allows remote malicious users to inject arbitrary web script or HTML via the search parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Dootzky Oblog
435
VMScore
CVE-2009-4908
Multiple cross-site scripting (XSS) vulnerabilities in oBlog allow remote malicious users to inject arbitrary web script or HTML via the (1) commentName, (2) commentEmail, (3) commentWeb, or (4) commentText parameter to article.php; and allow remote authenticated administrators t...
Dootzky Oblog
1 EDB exploit
685
VMScore
CVE-2009-4907
Multiple cross-site request forgery (CSRF) vulnerabilities in oBlog allow remote malicious users to hijack the authentication of administrators for requests that (1) change the admin password, (2) force an admin logout, (3) change the visibility of posts, (4) remove links, and (5...
Dootzky Oblog
1 EDB exploit
445
VMScore
CVE-2009-4904
article.php in oBlog does not properly restrict comments, which allows remote malicious users to cause a denial of service (blog spam) via a comment=new action.
Dootzky Oblog
605
VMScore
CVE-2009-4909
admin/index.php in oBlog allows remote malicious users to conduct brute-force password guessing attacks via HTTP requests.
Dootzky Oblog
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
cross-site request forgery
unauthorized
CVE-2024-33925
reflected XSS
CVE-2023-51580
CVE-2023-51579
CVE-2015-2051
CVE-2023-51609
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started